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REMARKS 

Claims 28-52 are currently pending in the subject application, and are presently under 
consideration. Claims 28, 35, 41, 45, 47, and 50-52 have been amended. Claims 42, 43, 46, and 
48 have been cancelled. New claims 53-67 have been added. Favorable reconsideration of the 
application is requested in view of the amendments and comments herein. 

Amended claim 28 recites accessing a registration server using a user's server and the 
first certificate of the user to create a connection that authenticates both the user's server identity 
via a server certificate of the user server and the user's identity via the user's first certificate, and 
determining in the registration server that the user is entitled to the second certificate by ensuring 
that the user is still a member of the PKI enterprise and ensuring that the user does not already 
have the second certificate. None of the cited art, individually or in combination, teaches or 
suggests amended claim 28. Consideration and allowance of amended claim 28, as well as 
claims 29-34 and 53-56 which depend therefrom, is respectfully requested. 

Amended claim 35 recites accessing a server platform using a user's server and the first 
certificate of the user to create a connection that authenticates both the user's server identity via a 
server certificate of the user server and the user's identity via the user's first certificate, tracking a 
pedigree of the user's first certificate, and accessing a registration web page having a level of 
security that is commensurate with the pedigree of the user's first certificate. None of the cited 
art, individually or in combination, teaches or suggests amended claim 35. Consideration and 
allowance of amended claim 35, as well as claims 36-40 and 57-61 which depend therefrom, is 
respectfully requested. 

Amended claim 41 recites a user server and a registration server, the user server 
accessing the registration server using the signature certificate of the user to create a connection 
that authenticates both the user*s server identity via a server certificate of the user server and the 
user's identity via the user's signature certificate, and a secure data channel being disposed 
between the registration server and the user server, the user server forwarding a request for the 
replacement certificate to the registration server through the secure data channel. Amended 
claim 41 also recites a first authority, the registration server determining that the user is entitled 
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to the replacement certificate and, upon said determination, revoking a certificate which the 
replacement certificate is replacing and forwarding a request to the first authority to generate a 
private/public key pair associated with the replacement certificate, the first authority sending the 
private key to the user via the secure data channel. None of the cited art, individually or in 
combination, teaches or suggests amended claim 41. Consideration and allowance of amended 
claim 41, as well as claims 44, 45, 62, and 63 which depend therefirom, is respectfully requested. 

Amended claim 47 recites a user server and a server platform, the user server accessing 
the server platform using the signature certificate of the user to create a connection that 
authenticates both the user's server identity via a server certificate of the user server and the 
user's identity via the user's signature certificate, and a secure data channel, the secure data 
channel being disposed between the server platform and the user server and being encrypted 
using the signature certificate. None of the cited art, individually or in combination, teaches or 
suggests amended claim 47. Consideration and allowance of amended claim 47, as well as 
claims 49-52 and 64-67 which depend therefrom, is respectfiiUy requested. 

New claim 53 depends from claim 28 and recites revoking the first certificate upon 
determining that the user is entitled to the second certificate. None of the cited art, individually 
or in combination, teaches or suggests new claim 53. Consideration and allowance of new claim 
53 is respectfially requested. 

New claim 54 depends from claim 28 and recites signaling both the directory and the 
another authority that the first certificate has been revoked. None of the cited art, individually or 
in combination, teaches or suggests new claim 54. Consideration and allowance of new claim 54 
is respectftilly requested. 

New claim 55 depends from claim 28 and recites that accessing a registration server 
comprises tracking a pedigree of the user's first certificate to access a registration web page 
having a level of security that is commensurate with the pedigree of the user's first certificate. 
None of the cited art, individually or in combination, teaches or suggests new claim 55. 
Consideration and allowance of new claim 55 is respectftilly requested. 
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New claim 56 depends from claim 28 and recites that the second certificate is an 
encryption certificate, and wherein creating a secure data channel comprises encrypting a 
transmission between registration server and the user server using the signature certificate. None 
of the cited art, individually or in combination, teaches or suggests new claim 56. Consideration 
and allowance of new claim 56 is respectfully requested. 

New claim 57 depends from claim 35 and recites that the server platform is a key 
recovery authority, and wherein the second certificate is one of a current encryption certificate 
and an expired encryption certificate. None of the cited art, individually or in combination, 
teaches or suggests new claim 57. Consideration and allowance of new claim 57 is respectfully 
requested. 

New claim 58 depends from claim 35 and recites determining in the server platform that 
the user is entitled to the second certificate by ensuring that the user is still a member of the PKI 
enterprise and ensuring that the user does not already have the second certificate. None of the 
cited art, individually or in combination, teaches or suggests new claim 58. Consideration and 
allowance of new claim 58 is respectfully requested. 

New claim 59 depends from claim 35 and recites revoking the first certificate upon 
determining that the user is entitled to the second certificate. None of the cited art, individually 
or in combination, teaches or suggests new claim 59. Consideration and allowance of new claim 
59 is respectfully requested. 

New claim 60 depends from claim 35 and recites signaling both the directory and the 
another authority that the first certificate has been revoked. None of the cited art, individually or 
in combination, teaches or suggests new claim 60. Consideration and allowance of new claim 60 
is respectfully requested. 

New claim 61 depends from claim 35 and recites that the second certificate is an 
encryption certificate, and wherein creating a secure data channel comprises encrypting a 
transmission between registration server and the user server using the signature certificate. None 
of the cited art, individually or in combination, teaches or suggests new claim 61. Consideration 
and allowance of new claim 61 is respectfully requested. 
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New claim 62 depends from claim 41 and recites that the registration server comprises a 
plurality of registration web pages, each of the plurality of registration web pages having a level 
of security, a given one of the plurality of registration web pages being accessible to a given user 
in the PKI enterprise upon a pedigree of the given user's signature certificate being 
commensurate with the respective level of security. None of the cited art, individually or in 
combination, teaches or suggests new claim 62. Consideration and allowance of new claim 62 is 
respectfully requested. 

New claim 63 depends from claim 41 and recites that the secure data channel is 
encrypted using the signature certificate. None of the cited art, individually or in combination, 
teaches or suggests new claim 63. Consideration and allowance of new claim 63 is respectfiiUy 
requested. 

New claim 64 depends from claim 47 and recites that the server platform comprises a 
plurality of registration web pages, each of the plurality of registration web pages having a level 
of security, a given one of the plurality of registration web pages being accessible to a given user 
in the PKI enterprise upon a pedigree of the given user's signature certificate being 
commensurate with the respective level of security. None of the cited art, individually or in 
combination, teaches or suggests new claim 64. Consideration and allowance of new claim 64 is 
respectfiilly requested. 

New claim 65 depends from claim 47 and recites that the server platform determines 
whether the user is entitled to the second certificate by ensuring that the user is still a member of 
the PKI enterprise and by ensuring that the user does not already have the second certificate upon 
the user server forwarding the request for the second certificate. None of the cited art, 
individually or in combination, teaches or suggests new claim 65. Consideration and allowance 
of new claim 65 is respectfully requested. 

New claim 66 depends from claim 47 and recites that the server platform revokes the 
signature certificate upon the server platform generating the second certificate. None of the cited 
art, individually or in combination, teaches or suggests new claim 66. Consideration and 
allowance of new claim 66 is respectfully requested. 
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New claim 67 depends from claim 47 and recites that the server platform is a key 
recovery authority, and wherein the second certificate is one of a current encryption certificate 
and an expired encryption certificate. None of the cited art, individually or in combination, 
teaches or suggests new claim 67. Consideration and allowance of new claim 67 is respectfiiUy 
requested. 
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CONCLUSION 



In view of the foregoing remarks, Applicant respectfully submits that the present 
application is in condition for allowance. Applicant respectfully requests reconsideration of this 
application and that the application be passed to issue. 

Please charge any deficiency or credit any overpayment in the fees for this amendment to 
our Deposit Account No. 20-0090. 



Respectfully submitted. 
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